← back
CVE-2007-1896

CVE-2007-1896

EPSS 2.0%
Directory traversal vulnerability in chat.php in Sky GUNNING MySpeach 3.0.7 and earlier allows remote attackers to include arbitrary local files via a .. (dot dot) and trailing %00 (NULL) in a my_ms[root] cookie.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/3657unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/34146http://secunia.com/advisories/24760http://secunia.com/advisories/24766https://www.exploit-db.com/exploits/3657http://www.vupen.com/english/advisories/2007/1261